The "Forminator Contact Form, Poll & Quiz Builder" plugin prior to 1.6 for WordPress has SQL Injection via the wp-admin/admin.php?page=forminator-entries entry[] parameter if the attacker has the delete permission.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
incsub forminator |